Rising Cybersecurity Threats to Critical Infrastructure in the UK and Australia

Today’s newsletter highlights the recently reported attack against the United Kingdom’s National Health Service. The hackers reportedly listed the NHS as a victim of data theft, but no NHS data has been published. It also highlights the recent claim by an Australian spy chief that Chinese hackers are targeting critical infrastructure assets in Australia, such as telecommunications. Both highlight the risks that hacking groups pose to national infrastructure, and the growing value that access to national infrastructure data and devices have to foreign adversaries.

United Kingdom’s National Health Service Listed Victim of Recent Oracle Hack

The United Kingdom’s National Health Service (NHS) was recently named as a victim in a data The United Kingdom’s National Health Service was listed as a victim of a recent data theft and extortion campaign. The hackers were targeting organizations that use an enterprise tool by Oracle called the E-Business Suite. This hack also allegedly impacted other organizations such as Harvard University, Schneider Electric and The Washington Post. The hack was linked to a cybercriminal group called Cl0p, which has yet to publish any of the National Health Service’s data. The scope of impact has not been publicly detailed in the reporting to date, but a spokesperson stated that the cybersecurity team is working closely with the National Cyber Security Centre to investigate. This incident is another event that demonstrates the growing threats that hacking groups pose to organizations across the world today. 

Access the full article here.

Australian Spy Chief Accuses Chinese Hackers of Targeting Critical Infrastructure

Chinese hackers reportedly targeted critical infrastructure assets in Australia, such as telecommunication networks, according to accusations made by Australia's intelligence agency. The Chinese government dismissed the allegations, but the Australian spy chief Mike Burgess claimed that Chinese hacking groups have been probing Australian telecommunications networks. He said that other infrastructure assets are being targeted among western allies as well, including transport, water and energy networks. Earlier this year, he stated that sabotage of critical infrastructure that is enabled by espionage could cost the Australian economy more than one billion dollars, estimating a rise to six billion dollars if the disruption lasted for a week. Demonstrating not only the high costs of potential cyber attacks, but the increasing threat that they pose to nation states across the globe. Access the full article here. Access the full article here.

Yisda Takeaways

The value of unauthorized remote access to critical infrastructure is growing, causing a larger threat to national security by hacking groups and nation states hoping to capitalize on that value. The value comes both in the ability to compromise those systems, as well as selling or ransoming the data that is exfiltrated from those systems. These attacks are continuing to increase, and they highlight both the growing value that successful hacks achieve for hackers, as well as the growing need for secure network architectures and operational security within organizations of all sizes. It is vital to have a strong focus on data protection to prevent data exfiltration in your organization. It is also crucial to maintain regular and secure backups to help minimize the effects that a successful ransomware attack can have on your organization. You can work to mitigate exposure by implementing secure network microsegmentation where appropriate, and safeguarding remote access where it is necessary by using solutions like zero trust remote access.